siemens

2,373 tracked vulnerabilities.

CVE-2022-34273 HIGH
PADS Standard/Plus Viewer - Out-of-bounds Write in PCB File Parser
Jul 12, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-34272 HIGH
PADS Standard/Plus Viewer - Out-of-bounds Read in PCB File Parser
Jul 12, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-33736 HIGH
Opcenter Quality <V13.1.20220624-V13.2.20220624 - DoS
Jul 12, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-33138 HIGH
SIMATIC MV540-560 <V3.3 - Info Disclosure
Jul 12, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-33137 HIGH
SIMATIC MV540-560 <V3.3 - Auth Bypass
Jul 12, 2022
CVSS 8.0
EPSS 0.01
CVE-2022-30938 HIGH
EN100 Ethernet module - Memory Corruption
Jul 12, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-29884 HIGH
SICAM A8000 CP-8000/8021/8022 Firmware < 16.30 - Unauthenticated Denial of Service via HTTPS Server Resource Leak
Jul 12, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-29560 HIGH
Siemens RUGGEDCOM ROX < 2.15.1 - Authenticated Command Injection
Jul 12, 2022
CVSS 7.2
EPSS 0.02
CVE-2022-26649 CRITICAL
SCALANCE X200-4P IRT < V5.5.2 and SCALANCE X204-2 < V5.2.6 - Unauthenticated Denial of Service via HTTP GET Request URI
Jul 12, 2022
CVSS 9.6
EPSS 0.01
CVE-2022-26648 HIGH
SCALANCE X200-4P IRT < V5.5.2 - Unauthenticated Denial of Service via HTTP GET Parameter XNo
Jul 12, 2022
CVSS 8.2
EPSS 0.01
CVE-2022-26647 HIGH
SCALANCE X200-4P IRT < V5.5.2 - Unauthenticated Session Hijacking via Insecure Session ID Generation
Jul 12, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-32206 MEDIUM
curl < 7.84.0 - Denial of Service via Unbounded HTTP Compression Chain
Jul 07, 2022
CVSS 6.5
EPSS 0.32
CVE-2022-32205 MEDIUM
curl 7.71.0-7.84.0 - Denial of Service via Excessive Set-Cookie Headers
Jul 07, 2022
CVSS 4.3
EPSS 0.27
CVE-2022-2097 MEDIUM
OpenSSL 1.1.1-1.1.1p and 3.0.0-3.0.4 - Data Exposure via AES OCB Mode on 32-bit x86 Platforms
Jul 05, 2022
CVSS 5.3
EPSS 0.04
CVE-2022-2068 HIGH
OpenSSL 1.0.2-1.0.2ze, 1.1.1-1.1.1o, 3.0.0-3.0.3 - OS Command Injection via c_rehash Script
Jun 21, 2022
CVSS 7.3
EPSS 0.96
CVE-2022-33139 CRITICAL
Cerberus DMS, Desigo CC, Desigo CC Compact, SIMATIC WinCC OA - Unauthenticated User Impersonation
Jun 21, 2022
CVSS 9.8
EPSS 0.01
CVE-2022-32262 HIGH
SINEMA Remote Connect Server < 3.1 - Remote Code Execution via File Upload Command Injection
Jun 14, 2022
CVSS 8.8
EPSS 0.02
CVE-2022-32261 MEDIUM
SINEMA Remote Connect Server <V3.1 - Code Injection
Jun 14, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-32260 MEDIUM
SINEMA Remote Connect Server < 3.2 SP1 - Authentication Bypass via Temporary Credentials
Jun 14, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-32259 MEDIUM
SINEMA Remote Connect Server <V3.1 - Info Disclosure
Jun 14, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-32258 MEDIUM
SINEMA Remote Connect Server < 3.1 - Information Disclosure via Device Configuration Import Endpoint
Jun 14, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-32256 MEDIUM
SINEMA Remote Connect Server < 3.1 - Improper Access Control
Jun 14, 2022
CVSS 4.3
EPSS 0.01
CVE-2022-32255 MEDIUM
SINEMA Remote Connect Server < 3.1 - Unauthorized Information Access via Improper Access Control
Jun 14, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-32254 MEDIUM
SINEMA Remote Connect Server < 3.1 - Sensitive Information Exposure via HTTP POST Request
Jun 14, 2022
CVSS 4.3
EPSS 0.01
CVE-2022-32253 MEDIUM
SINEMA Remote Connect Server < 3.1 - Unauthenticated Sensitive Information Exposure via OpenSSL Certificate Password
Jun 14, 2022
CVSS 4.9
EPSS 0.01